Visa is a world leader in payments and technology, with over 259 billion payments transactions flowing safely between consumers, merchants, financial institutions, and government entities in more than 200 countries and territories each year. Our mission is to connect the world through the most innovative, convenient, reliable, and secure payments network, enabling individuals, businesses, and economies to thrive while driven by a common purpose – to uplift everyone, everywhere by being the best way to pay and be paid.

Make an impact with a purpose-driven industry leader. Join us today and experience Life at Visa.

Visa Cybersecurity’s Ethical Hacking (Penetration Testing) program has the objective to proactively identify weaknesses and shortcomings in Visa’s security posture and recommend necessary controls/procedures to protect Visa from adversarial threats. As a member of this program, you will be involved in engagements that simulate adversarial threats and attacks in a timely manner.

Responsibilities:

• Conduct high risk and sensitive penetration tests of internally and externally hosted applications globally according to scope defined by the penetration test team
• Subject matter expertise in web application, API, or network penetration testing
• Proactively research/identify vulnerabilities and provide recommended countermeasures or mitigating controls to reduce risk to an acceptable and manageable level
• Review results of network and application penetration tests in order to determine severity of findings and to ensure proper remediation is applied
• Provide accurate and timely reporting of findings and proposed remediation/mitigations
• Develop and automate scripts, tools and resources needed to advance ethical hacking capabilities around new and emerging technologies like mobile, cloud and embedded systems
• Active involvement in security research around new and emerging technologies

• We welcome applications from Singapore citizens and Singapore Permanent Residents. All candidates must have existing, and continuing, right to work in Singapore.
• Penultimate year undergraduate students graduating between December 2026 – May 2027
• Able to work full-time for 12 weeks between May 2026 and August 2026.
• Pursuing a degree in Computer Science, Computing, Information Systems, or a related field
• Understanding of web application security topics including OWASP Top 10 and SANS Top 25
• Understanding of cryptographic concepts and applied cryptography (SSL, AES, etc.)
• Understanding of vulnerability scoring/rating system such as CVSS
• Proficiency in one or more scripting languages – JavaScript, Python, Shell Scripting, etc.
• Proficiency in one or more high level programming languages like Java, C, C++, Ruby, etc.
• Strong problem solving and analytical skills
• Strong verbal and written communication skills
• Strong operational skills: quality and results oriented

Visa is an EEO Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status. Visa will also consider for employment qualified applicants with criminal histories in a manner consistent with EEOC guidelines and applicable local law.